General

  • Target

    724f0d506273d7d6ba8cada41b9d1f99

  • Size

    876KB

  • MD5

    724f0d506273d7d6ba8cada41b9d1f99

  • SHA1

    afc0ce1095545496f644b26817fb0b8976fa5b2b

  • SHA256

    46d92ae405760db046bf39c22201222deeca92d825e9da07d6a61f03ef814713

  • SHA512

    be0909a0ce89d5d0d9cf7e4c9dea7c998c904139c4912a5058452dd1e78b7b53c68fff4a99432f434c47703022a333be59bd7cd674748ce571585b9b507aa2ae

  • SSDEEP

    12288:wk4e7GBNXfpQVKjnsmH/fOiuTTfp07jXPgb3abDQX/Cwz39QCA87ermi1JB6Gasz:wnCY+2nvGMjfaab1wzv5eX1JBKsz

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 6 IoCs

    Checks for missing Authenticode signature.

Files

  • 724f0d506273d7d6ba8cada41b9d1f99
    .exe windows:4 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • $PLUGINSDIR/FindProcDLL.dll
    .dll windows:4 windows x86 arch:x86

    3cda50efa41b17b7a20156056d51b809


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    9d433976e02d79532f0d635ee81d0b20


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/KillProcDLL.dll
    .dll windows:4 windows x86 arch:x86

    815c88741b87a0210c457b00b57bf9c6


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsSCM.dll
    .dll windows:4 windows x86 arch:x86

    0897e514cdf3f5ec7b01dec9ae7ce8f3


    Headers

    Imports

    Exports

    Sections

  • $R0
    .exe windows:4 windows x86 arch:x86

    4f57fb89bd1e69c57e3e5575794858bf


    Headers

    Imports

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections